anonym: >> To my knowledge Tails has never had an emergency release related to
Thunderbird. Even when there have been vulnerabilities in Thunderbird which would have compromised the anonymity of the users.https://tails.net/news/IP_leakage_with_Icedove/ :D
I stand corrected. ^__^
Indeed, sandboxing Thunderbird has been our best-effort attempt at managing the situation, and we know the sandboxing is problematic (see my other post in this thread).Agreed. I would hope that actions such as these would be taken and documented somewhere.Please open an issue about it on Tails' GitLab and let's try to make it happen!
I opened an issue regarding the documentation work. https://gitlab.tails.boum.org/tails/tails/-/issues/21202My outsider understanding is that there already is knowledge in the project about what the known weaknesses are. They just need to be documented for the end users.
Cheers, Topi
OpenPGP_signature.asc
Description: OpenPGP digital signature
_______________________________________________ Tails-dev mailing list [email protected] https://www.autistici.org/mailman/listinfo/tails-dev To unsubscribe from this list, send an empty email to [email protected].
